DEEPSIKHA

• Directed governance, risk, and compliance activities across critical OT environments by leading a team of Cyber Security Analysts responsible for secure configuration management, patch governance, vulnerability remediation, and operational hardening of cybersecurity solutions.
• Functioned as the Global Product Security & Solution Expert for Siemens India's Grid Software Vertical, steering cybersecurity governance throughout bid evaluation, solution engineering, deployment, and full life-cycle management while ensuring alignment with IEC 62443, ISO 27001, and enterprise risk frameworks.
• Developed and implemented cybersecurity governance strategies for global programs, delivering specialized security and compliance training in Nuremberg, Germany, to government project teams from Egypt, Korea, Nepal, and Sri Lanka.
• Served as a keynote security speaker at company-wide and Government of India cybersecurity symposiums, influencing national-level cybersecurity practices by presenting on OT risk governance, defense-in-depth models, and regulatory compliance.
• Provided expert guidance on closing compliance audits, such as ISO 27001, and led the interpretation and application of IEC 62443 controls for conformance, architecture validation, and audit readiness across multiple industrial and grid control environments.
• Working with HQ to get Siemens SCADA SP7 EU CRA certified.

Collaborate with customer to develop Cyber SOC utilizing AI Agents

• Reviewed, strengthened, and operationalized cybersecurity policies, standards, and procedures for regional and national control centers in India, advising leadership on governance design, risk mitigation strategies, and industry-aligned best practices tailored to operational realities.
• Collaborated with cross-functional engineering, operations, and leadership teams to drive enterprise-wide adoption of security governance frameworks, ensuring risk-based decision making and embedding cybersecurity requirements into all phases of project and product life cycles.
• Championed cybersecurity awareness, maturity improvement, and compliance culture by mentoring teams, establishing governance documentation, and ensuring adherence to regulatory, customer, and internal security requirements.
• Designed disaster recovery plans to minimize downtime in case of system failure.
• Analyzed system logs for anomalies that might indicate malicious behavior.
• Created risk assessments and identified potential threats to the system.
• Managed incident response processes in the event of cyberattacks or data breaches.
• Provided technical support for cybersecurity initiatives across departments.
• Reviewed vendor contracts for security implications prior to implementation.
• Developed and implemented security policies, procedures, and best practices to ensure a secure IT infrastructure.
• Worked with legal counsels regarding privacy laws, regulations, and compliance issues.
• Met with department heads, managers, supervisors, and vendors to solicit cooperation and resolve problems.
• Consulted with users, management, vendors, and technicians to assess computing needs and system requirements.
• Controlled operational budget and expenditures.
• Delivered an influential paper on AI-driven Cyber SOC advancements at GridCon 2025, receiving exceptional appreciation and achieving the highest level of attendee interest.
• Developed and maintained a comprehensive cybersecurity strategy aligned with clients' corporate policies and business goals, tailored to the evolving threat landscape.
• Managed relationships with internal and external stakeholders, including senior executives, IT staff, and key decision-makers within the cybersecurity organization.
• Led a security operations team responsible for real-time threat analysis and triage.
• Actively participated in Pre-bid and bid stages for cybersecurity activities, overseeing the planning, procurement, and deployment of security hardware and software, and ensuring IT and network infrastructure adhered to best practices.
• Created training materials to provide participants with comprehensive, practical knowledge about cybersecurity risks, threats, and mitigation strategies during project engineering and life cycle phases.

• Collaborated with the cybersecurity incident response team to understand and mitigate active threats, utilizing industry best practices and technical expertise to quickly identify and respond to security incidents.
• Analyzed existing security infrastructure and provided consultancy on suitable security products to enhance the current setup.
• Created Detailed Project Documents for the migration of existing portals to a shared network infrastructure.
• Developed proper DPDs for the decommissioning of existing infrastructure post-migration.
• Attended triage calls to understand requirements, created Statements of Work, and performed resource allocation.
• Identified risks and dependencies during migration, providing mitigation strategies to address them.
• Developed high-level designs or work packages based on existing network services, proposing migration solutions.
• Provided project estimates, created story points, and updated the Scrum Board accordingly.
• Participated in troubleshooting calls to diagnose issues and provided detailed solutions.
• Analyzed traffic using Sky box and created tickets for implementation.
• Analyzed customer and stakeholder requirements based on Statements of Work (SOW) and created comprehensive Technical Design Documents (LLD/PSD and LTD).
• Managed stakeholders by addressing their requirements and detailing the technical efforts needed to complete tasks.
• Participated in consultancy calls to address technical queries related to the NBS environment.
• Conducted peer reviews of designs after understanding the technical requirements.
• Utilized Splunk for troubleshooting and issue analysis.
• Leveraged Sky box Manager to create technical tickets based on design specifications.
• Assessed customer requirements for traffic flow, suggested optimal solutions, and provided design enhancements and troubleshooting.

• Managed, troubleshooted, and configured Websense Proxy (APX-WEB, Data, Email).
• Troubleshooted transparent and explicit proxy (WCG), and installed V5K appliances and software-based appliances.
• Created and set up filtering policies.
• Managed and troubleshot log servers and SQL log database studios.
• Provided troubleshooting for DC agents.
• Configured and troubleshot Windows Server 2008 and 2012 R2.

• Troubleshooted and configured StoneSoft firewalls.
• Handled data security tasks, including troubleshooting and configuring the Triton AP DATA Module.
• Deployed, initialized, and configured the following DSS and DLP components: Data Security Management Server, Optional Data Security Servers, Protectors, Agents, and Endpoint.
• Provided first-level support to Juniper Networks customers worldwide on a 24/7 basis.
• Specialized in resolving issues related to Juniper Secure Access (SA) SSL VPN appliances.
• Deployed Juniper SA devices in both standalone and cluster modes.
• Assisted customers with security and deployment requirements, such as opening firewall ports and configuring policies during SSL VPN deployment.
• Isolated Juniper SSL VPN issues involving firewalls such as Checkpoint R75.20, Juniper SSG, Cisco ASA, and F5 load balancers.
• Configured SA appliances to access Citrix, MS SharePoint, VMware, and MS Terminal Servers.
• Integrated SA appliances with authentication servers like AD, LDAP, and RADIUS via F5 load balancers.
• Duplicated customer-reported issues in-house using AAA servers and firewall appliances.
• Troubleshooted issues related to access to Core, Session, and Layer 3 IPsec or SSL remote VPN.

• Conducted detailed troubleshooting on policy servers, policy databases, filtering services, user agents, and real-time monitoring.
• Troubleshooted and configured StoneSoft firewalls.
• Handled data security tasks, including troubleshooting and configuring the Triton AP DATA Module.